Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/593065-bab4-4b6d-959a-45dae6fedc33/1/33wkVpDLiGGZ1BACguWaloMzzGM.roa
File: 33wkVpDLiGGZ1BACguWaloMzzGM.roa (raw, json)
Hash identifier: 3yfTFFi4K6UCZgO6L95kATh6hEZ39GNwE1vqUUnF6Zw=
Subject key identifier: DF:7C:24:56:90:CB:88:61:99:D4:10:02:82:E5:9A:96:83:33:CC:63
Certificate issuer: /CN=47c6df6a7c23e6d5597ea941e2abbd16aa8239d2
Certificate serial: 067B1559
Authority key identifier: 47:C6:DF:6A:7C:23:E6:D5:59:7E:A9:41:E2:AB:BD:16:AA:82:39:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R8bfanwj5tVZfqlB4qu9FqqCOdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/593065-bab4-4b6d-959a-45dae6fedc33/1/33wkVpDLiGGZ1BACguWaloMzzGM.roa
Signing time: Sat 01 Jan 2022 16:10:44 +0000
ROA not before: Sat 01 Jan 2022 16:10:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 45.83.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108729689 (0x67b1559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47c6df6a7c23e6d5597ea941e2abbd16aa8239d2
Validity
Not Before: Jan 1 16:10:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df7c245690cb886199d4100282e59a968333cc63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1f:80:ea:69:b8:76:c1:da:9c:d6:d5:6b:4a:
df:03:b8:f2:02:50:cd:3b:f0:44:85:11:3c:92:4e:
09:cb:bd:5c:68:6a:bf:9a:8d:09:e3:89:2c:01:41:
a9:d7:a8:ab:d9:c8:ee:1e:41:99:de:0a:55:d6:f7:
e4:49:23:61:d0:50:34:25:5c:b4:ca:aa:b9:8d:df:
0e:c7:2c:e4:81:e9:1c:06:91:95:da:d1:c8:92:25:
51:fb:3f:80:23:13:45:19:54:fe:b4:c3:43:d5:cf:
a0:51:7e:ac:b1:bd:85:f3:f2:a2:bc:ff:74:23:b6:
94:b7:00:ea:8f:6e:b2:e2:32:b9:15:ed:12:41:c6:
89:08:cf:31:eb:e4:e5:45:8b:c5:de:c1:6f:af:4b:
1b:f5:61:ef:78:89:d4:d2:33:b6:18:ec:a7:76:b2:
51:9c:aa:eb:24:13:51:95:dc:69:99:6c:1a:af:77:
c0:ed:72:52:4a:91:aa:50:ac:0e:91:5c:4e:c3:93:
e4:b6:c2:b1:ae:02:30:14:f4:de:92:da:12:35:93:
41:1f:42:a5:57:4a:e3:b9:f5:39:92:04:9a:d7:a8:
32:16:c0:e9:1a:e8:61:85:8c:f4:0a:e2:94:83:3d:
e0:26:81:73:56:da:d3:7f:ef:28:50:e7:57:b8:8b:
9d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:7C:24:56:90:CB:88:61:99:D4:10:02:82:E5:9A:96:83:33:CC:63
X509v3 Authority Key Identifier:
keyid:47:C6:DF:6A:7C:23:E6:D5:59:7E:A9:41:E2:AB:BD:16:AA:82:39:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R8bfanwj5tVZfqlB4qu9FqqCOdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/593065-bab4-4b6d-959a-45dae6fedc33/1/33wkVpDLiGGZ1BACguWaloMzzGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/593065-bab4-4b6d-959a-45dae6fedc33/1/R8bfanwj5tVZfqlB4qu9FqqCOdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.228.0/22
Signature Algorithm: sha256WithRSAEncryption
11:5a:b2:fd:52:de:da:d6:eb:0c:34:1e:e9:42:80:c2:d7:ef:
d4:58:8d:70:58:6c:f3:22:8c:7b:cc:18:f9:81:0d:c3:7b:cd:
7b:ee:c8:5b:2b:22:d1:63:63:64:c9:a5:e3:18:20:86:75:db:
a8:5f:6a:fa:19:91:6b:f8:31:00:58:4c:34:aa:9b:88:da:2f:
a5:58:52:5b:36:08:03:53:1a:9d:88:5a:10:96:9b:92:6e:43:
df:78:83:fc:d9:c3:f6:97:82:a0:c2:1b:77:48:c4:86:8f:d6:
73:57:e1:e4:9b:25:08:f4:dc:b1:c8:e7:87:de:e2:89:81:b4:
64:5a:31:40:fa:ff:87:a6:88:75:8b:86:ff:fe:b3:09:6c:fa:
76:1c:7b:d1:5c:10:f4:9f:ef:40:b6:f0:da:77:a6:8b:6a:35:
e8:df:3d:8e:1d:ab:db:a9:99:39:df:42:7b:c9:6e:e4:02:3a:
c2:fc:72:70:d0:06:e2:9e:7c:34:6b:54:40:e5:20:18:7e:62:
40:05:44:08:3a:7b:c2:d2:22:d9:ae:41:e6:2d:22:b3:3b:fb:
45:a4:86:53:19:f7:3f:a7:59:f9:6d:14:0d:b7:d7:de:9f:68:
2a:3a:a0:27:61:b4:24:6c:da:7d:36:8f:6f:c5:6b:02:c6:63:
2d:d4:2e:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net